Started in ops and blue, now I hack for a living. SANS author/instructor in Oregon. Founder: https://t.co/c36tmCG20T. He/him.
@jeffmcjunkin@infosec.exchange
Mar 7 • 15 tweets • 7 min read
Wow, this article was a fun rabbit hole:
In viewing , I then saw a reference to a scanned document named Chasebank_statement_feb.zip.
1/14
Every time I've seen companies roll their own implementation, it's resulted in _any_ compromised workstation being able to retrieve _all_ local Administrator passwords.